Privacy Policy
Effective Date: March 22, 2026 Last Updated: April 13, 2026
1. Introduction
Eodin ("we," "us," or "our") operates Plori, a GPS-based automatic docent app. This Privacy Policy explains how we collect, use, store, and protect your personal information when you use Plori ("the App").
By using the App, you consent to the practices described in this Privacy Policy.
2. Information We Collect
2.1 Account Information
When you sign in with Google or Apple, we receive:
- User ID (unique identifier from the authentication provider)
- Display name (if provided by the authentication provider)
- Email address (if provided by the authentication provider)
We do not store your Google or Apple password.
2.2 Location Data
- Foreground location: Used to find places near you and calculate distances.
- Background location: Used to detect when you enter a place's radius and automatically play audio guides. This is the App's core feature ("Passive Discovery").
- Location data is processed in real-time and is not stored on our servers beyond what is necessary for the listening history feature (city-level, not precise coordinates).
2.3 Usage Data
- Listening history: Places you've listened to, dates, and completion status.
- Favorites: Places you've saved.
- Language preferences: App UI language and docent language settings.
- Device token: Firebase Cloud Messaging (FCM) token for push notifications.
2.4 Device Information
- Device platform (iOS or Android)
- App version
We do not collect:
- Contacts or files from your device (except photos you voluntarily upload)
- Browsing history
- Precise location history on our servers
- Biometric data
2.5 User-Uploaded Photos
When you upload photos to a place:
- Photo file: Stored on Cloudflare R2 CDN in WebP format.
- Photo metadata: Caption (if provided), upload date, dimensions, and your user ID are stored in our database.
- EXIF data: We do not intentionally extract or store EXIF metadata (GPS coordinates, camera info, etc.) from uploaded photos, but the original file may contain such data.
- Uploaded photos are visible to all App users on the corresponding place page.
- You can delete your uploaded photos at any time through the App.
3. How We Use Your Information
| Purpose | Data Used |
|---|---|
| Provide audio guides for nearby places | Location (real-time) |
| Save and display your listening history | Listening history, place data |
| Manage your favorites | Favorites list |
| Send push notifications | FCM device token |
| Personalize language settings | Language preferences |
| Improve the App | Aggregated, anonymized usage statistics |
| Display user-uploaded photos | User-uploaded photos, user ID |
4. Data Storage and Security
4.1 Where We Store Data
- Database: Railway-hosted PostgreSQL (encrypted at rest)
- Audio/Image files: Cloudflare R2 (global CDN)
- Authentication: Firebase Auth (Google Cloud infrastructure)
4.2 Security Measures
- All data transmitted between the App and our servers is encrypted using TLS/HTTPS.
- Database access is restricted to authorized services only.
- Firebase Auth handles authentication securely with industry-standard practices.
- API access requires valid authentication tokens (JWT).
5. Data Sharing
We do not sell, rent, or trade your personal information.
We share data only with the following service providers, strictly for operating the App:
| Provider | Purpose | Data Shared |
|---|---|---|
| Firebase (Google) | Authentication, Push Notifications | User ID, FCM token |
| Railway | Database hosting | All app data (encrypted) |
| Cloudflare | Audio/image CDN | Audio files, place images |
| Anthropic (Claude) | AI content generation | Place names, Wikipedia text (no user data) |
| OpenAI | Text-to-speech audio generation | Docent scripts (no user data) |
| Mapbox | Map display | Map tile requests (no user identification) |
| Cloudflare | Photo CDN | User-uploaded photos |
No user personal data (name, email, location) is shared with AI providers (Anthropic, OpenAI). Only place-related public information is sent for content generation.
6. Data Retention
| Data | Retention Period |
|---|---|
| Account information | Until you delete your account |
| Listening history | Until you delete your account |
| Favorites | Until you delete your account |
| Location data | Not stored (real-time processing only) |
| FCM device tokens | Until logout or token expiration |
| User-uploaded photos | Until you delete them or your account |
7. Your Rights
You have the right to:
7.1 Access Your Data
View your profile, listening history, and favorites within the App.
7.2 Correct Your Data
Update your display name and language preferences in Settings.
7.3 Delete Your Data
- Delete your account through the App's Settings, which removes all associated data.
- Contact us at official@eodin.app for data deletion requests.
7.4 Withdraw Consent
- Location: Revoke location permission through your device's settings.
- Notifications: Disable push notifications in the App's settings or device settings.
- Account: Log out or delete your account at any time.
7.5 Data Portability
Contact us at official@eodin.app to request a copy of your data.
8. Children's Privacy
The App is not intended for children under 13 years of age. We do not knowingly collect personal information from children under 13. If we discover that we have collected data from a child under 13, we will delete it promptly.
9. International Data Transfers
Your data may be processed in countries other than your country of residence. We ensure appropriate safeguards are in place for international data transfers in compliance with applicable data protection laws.
10. Cookies and Tracking
The App does not use cookies. The Admin panel (web-based) may use session cookies for authentication purposes only.
11. Changes to This Policy
We may update this Privacy Policy from time to time. We will notify you of material changes through the App or by email. The "Last Updated" date at the top indicates when the latest changes were made.
12. Contact Us
If you have questions, concerns, or requests regarding this Privacy Policy, please contact us at:
- Email: official@eodin.app
- Website: https://eodin.app
13. Governing Law
This Privacy Policy is governed by the laws of the Republic of Korea, including the Personal Information Protection Act (PIPA).